Lucene search
+L

1722 matches found

osv
osv
added 3 days ago2 views

CVE-2026-58487 HedgeDoc: Stored HTML injection via email local-part

HedgeDoc is an open source, real-time, collaborative, markdown notes application. Prior to version 1.11.0, due to unsafe handling of the local-part of registered email addresses, HedgeDoc was vulnerable to stored HTML Injection through its publish and slide views. An attacker could register a...

5.1CVSS6.2AI score0.00358EPSS
Exploits0References3
cvelist
cvelist
added 3 days ago32 views

CVE-2026-58487 HedgeDoc: Stored HTML injection via email local-part

HedgeDoc is an open source, real-time, collaborative, markdown notes application. Prior to version 1.11.0, due to unsafe handling of the local-part of registered email addresses, HedgeDoc was vulnerable to stored HTML Injection through its publish and slide views. An attacker could register a...

5.1CVSS0.00358EPSS
Exploits0References1
ptsecurity
ptsecurity
added 3 days ago7 views

PT-2026-57722

Name of the Vulnerable Software and Affected Versions Aman CF7 Views versions prior to 3.2.3 Description A DOM-Based Cross-site Scripting XSS issue exists due to improper neutralization of input during web page generation. This allows stored scripts to execute within the user's browser...

7.1CVSS6.2AI score0.0018EPSS
Exploits0References5
euvd
euvd
added 2026/07/09 5:10 p.m.7 views

EUVD-2026-42637

PayRange Android app, version 7.0.7 and below, contains an SSL bypass vulnerability that allows invalid certificates to be accepted in application webviews. A remote and unauthenticated attacker can steal information that the user sends...

7.5CVSS6AI score0.00229EPSS
Exploits0References2
nvd
nvd
added 2026/07/09 4:16 p.m.6 views

CVE-2026-15188

A weakness has been identified in manjurulhoque django-job-portal up to dfa352f305bba44445ac5dc12e9b2a98c9dcd71f. Affected by this vulnerability is the function EditEmployeeProfileAPIView of the file accounts/api/views.py of the component Employee Dashboard Endpoint. This manipulation of the...

6.5CVSS0.00209EPSS
Exploits0References6
euvd
euvd
added 2026/07/09 12:31 a.m.8 views

EUVD-2026-42477

Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

6AI score0.00225EPSS
Exploits0References3
euvd
euvd
added 2026/07/09 12:31 a.m.9 views

EUVD-2026-42483

Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

6AI score0.00178EPSS
Exploits0References3
nessus
nessus
added 2026/07/09 12:0 a.m.12 views

Google Chrome < 150.0.7871.114 Multiple Vulnerabilities

The version of Google Chrome installed on the remote macOS host is prior to 150.0.7871.114. It is, therefore, affected by multiple vulnerabilities as referenced in the 202607stable-channel-update-for-desktop01162222768 advisory. - Use after free in Autofill in Google Chrome on Android prior to...

9.6CVSS6.4AI score0.00306EPSS
Exploits0References55
nessus
nessus
added 2026/07/09 12:0 a.m.12 views

Google Chrome < 150.0.7871.114 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 150.0.7871.114. It is, therefore, affected by multiple vulnerabilities as referenced in the 202607stable-channel-update-for-desktop01162222768 advisory. - Use after free in Autofill in Google Chrome on Android prior to...

9.6CVSS6.4AI score0.00306EPSS
Exploits0References55
nvd
nvd
added 2026/07/08 11:16 p.m.7 views

CVE-2026-15129

Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS0.00225EPSS
Exploits0References2
osv
osv
added 2026/07/08 11:16 p.m.2 views

DEBIAN-CVE-2026-15111

Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

7.5CVSS6.1AI score0.00178EPSS
Exploits0References1
nvd
nvd
added 2026/07/08 11:16 p.m.8 views

CVE-2026-15111

Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

7.5CVSS0.00178EPSS
Exploits0References2
cvelist
cvelist
added 2026/07/08 10:36 p.m.37 views

CVE-2026-15111

Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

0.00178EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/07/08 10:36 p.m.6 views

CVE-2026-15111

Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

6AI score0.00178EPSS
Exploits0References3Affected Software1
cve
cve
added 2026/07/08 10:36 p.m.13 views

CVE-2026-15111

CVE-2026-15111 is a Chrome vulnerability: a use-after-free in Views causing heap corruption when a user is tricked into specific UI gestures on a crafted HTML page. Affected software: Google Chrome prior to 150.0.7871.115. Root cause: use-after-free in Views leading to potential heap corruption. ...

7.5CVSS6AI score0.00178EPSS
Exploits0References2Affected Software1
debiancve
debiancve
added 2026/07/08 10:36 p.m.6 views

CVE-2026-15111

Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

7.5CVSS6AI score0.00178EPSS
Exploits0
cve
cve
added 2026/07/08 10:35 p.m.53 views

CVE-2026-15129

CVE-2026-15129 describes a Use-After-Free in Chrome’s Views component (Chromium) prior to version 150.0.7871.115. A crafted HTML page can trigger heap corruption, enabling a remote attacker to potentially exploit the vulnerability. Affected software: Google Chrome on desktop (Windows, macOS, Linu...

8.8CVSS6AI score0.00225EPSS
Exploits0References2Affected Software1
debiancve
debiancve
added 2026/07/08 10:35 p.m.6 views

CVE-2026-15129

Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS6AI score0.00225EPSS
Exploits0
attackerkb
attackerkb
added 2026/07/08 10:35 p.m.6 views

CVE-2026-15129

Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

6AI score0.00225EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2026/07/08 10:35 p.m.36 views

CVE-2026-15129

Use after free in Views in Google Chrome prior to 150.0.7871.115 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Critical...

0.00225EPSS
Exploits0References2
Rows per page
Query Builder